signins

2025-09-30 17:44:39 -05:00
parent 7c8fd24b49
commit faf2041b7f
12 changed files with 421 additions and 270 deletions
--- a/server/main.go
+++ b/server/main.go
@@ -8,7 +8,7 @@ import (
 	"hyperia/db"
 	"hyperia/handlers"
 	"hyperia/logger"
-	"runtime/debug"
+	// "runtime/debug"
 	"strings"

 	"github.com/golang-jwt/jwt/v5"
@@ -27,28 +27,19 @@ func main() {
 	}

 	http.HandleFunc("/", func(w http.ResponseWriter, r *http.Request) {
-		defer func() {
-			if r := recover(); r != nil {
-				log.Error().
-					Interface("panic_reason", r).
-					Bytes("stack_trace", debug.Stack()).
-					Msg("panic in http goroutine")
-			}
-		}()
+		// Keeps server from crashing if a request fails
+		// defer func() {
+		// 	if r := recover(); r != nil {
+		// 		log.Error().
+		// 			Interface("panic_reason", r).
+		// 			Bytes("stack_trace", debug.Stack()).
+		// 			Msg("panic in http goroutine")
+		// 	}
+		// }()

-		subdomain := ""
-		host := strings.Split(r.Host, ":")[0] // remove port
-		parts := strings.Split(host, ".")
-		if len(parts) > 2 || (len(parts) > 1 && parts[1] == "localhost") {
-			subdomain = parts[0]
-		}
-
-		if strings.HasPrefix(r.URL.Path, "/_") {
-			handleAsset(w, r)
-		} else if subdomain == "apply" {
-			authMiddleware(handleApply)(w, r)
-		} else if subdomain == "pma" {
-			authMiddleware(handlePMA)(w, r)
+		if(loggedIn(w, r)) {
+			log.Info().Msg("logged")
+			handleSite(w, r)
 		} else {
 			handlePublic(w, r)
 		}
@@ -59,37 +50,32 @@ func main() {
 	if err != nil {
 		log.Fatal().Msgf("failed to start server: %v", err)
 	}
-
 }

 func handlePublic(w http.ResponseWriter, r *http.Request) {
+	if r.URL.Path == "/api/signup" {
+		handlers.HandleSignup(w, r)
+		return
+	}
 	if r.URL.Path == "/api/login" {
 		handlers.HandleLogin(w, r)
 		return
 	}
-	if r.URL.Path == "/api/join" {
-		handlers.HandleJoin(w, r)
-		return
-	}
-	if r.URL.Path == "/verify" {
-		handlers.HandleVerify(w, r)
+	if strings.HasPrefix(r.URL.Path, "/_") {
+		handleAsset(w, r)
 		return
 	}

 	servePublicFile(w, r)
 }

-func handleAsset(w http.ResponseWriter, r *http.Request) {
-	path := r.URL.Path
-	filePath := filepath.Join("../ui", path)
-	log.Debug().Msgf("serving asset: %s", filePath)
-	http.ServeFile(w, r, filePath)
-}
-
 func servePublicFile(w http.ResponseWriter, r *http.Request) {
 	path := r.URL.Path

 	if path == "/" {
+		w.Header().Set("Cache-Control", "no-store")
+		w.Header().Set("Pragma", "no-cache")
+		w.Header().Set("Expires", "0")
 		path = "/index.html"
 	} else if !strings.Contains(path, ".") {
 		path = filepath.Join("/pages", path) + ".html"
@@ -100,77 +86,62 @@ func servePublicFile(w http.ResponseWriter, r *http.Request) {
 	http.ServeFile(w, r, filePath)
 }

-func authMiddleware(next http.HandlerFunc) http.HandlerFunc {
-	return func(w http.ResponseWriter, r *http.Request) {
-		cookie, err := r.Cookie("auth_token")
-		if err != nil {
-			log.Warn().Msg("Unauthorized - missing auth token")
-			http.Error(w, "Unauthorized - missing auth token", http.StatusUnauthorized)
-			return
-		}
-		jwtToken := cookie.Value
-
-		token, err := jwt.Parse(jwtToken, func(token *jwt.Token) (interface{}, error) {
-			if _, ok := token.Method.(*jwt.SigningMethodHMAC); !ok {
-				return nil, fmt.Errorf("unexpected signing method: %v", token.Header["alg"])
-			}
-			return []byte(config.JWT_SECRET), nil
-		})
-
-		if err != nil {
-			log.Err(err).Msg("error authenticating jwt")
-		}
-		if err != nil || !token.Valid {
-			http.Error(w, "Unauthorized - invalid auth token", http.StatusUnauthorized)
-			return
-		}
-
-		next(w, r)
+func handleSite(w http.ResponseWriter, r *http.Request) {
+	if r.URL.Path == "/signout" {
+		handlers.HandleLogout(w, r)
+		return
 	}
+	if strings.HasPrefix(r.URL.Path, "/_") {
+		handleAsset(w, r)
+		return
+	}
+
+	serveSiteFiles(w, r)
 }

-func handleApply(w http.ResponseWriter, r *http.Request) {
-
-	// if r.URL.Path == "/api/application-save" {
-	// 	handlers.HandleApplicationSubmit(w, r)
-	// 	return
-	// }
-	// if r.URL.Path == "/api/get-application" {
-	// 	handlers.HandleGetApplication(w, r)
-	// 	return
-	// }
-	// if r.URL.Path == "/logout" {
-	// 	handlers.HandleLogout(w, r)
-	// 	return
-	// }
-	// if r.URL.Path == "/" {
-	// 	handlers.CheckApplicationCompleteMiddleware(w, r)
-	// }
-	// if r.URL.Path == "/complete" {
-	// 	handlers.ApplicationSubmitMiddleware(w, r)
-	// }
-
+func serveSiteFiles(w http.ResponseWriter, r *http.Request) {
 	path := r.URL.Path
+
 	if path == "/" {
 		path = "/index.html"
 	} else if !strings.Contains(path, ".") {
 		path = filepath.Join("/pages", path) + ".html"
 	}

-	filePath := filepath.Join("../ui/apply", path)
-	log.Debug().Msgf("Serving apply subdomain: %s", filePath)
+	filePath := filepath.Join("../ui/site", path)
+	log.Debug().Msgf("serving: %s", filePath)
 	http.ServeFile(w, r, filePath)
 }

-func handlePMA(w http.ResponseWriter, r *http.Request) {
+func handleAsset(w http.ResponseWriter, r *http.Request) {
 	path := r.URL.Path
-	if path == "/" {
-		path = "/index.html"
-	} else if !strings.Contains(path, ".") {
-		path = filepath.Join("/pages", path) + ".html"
+	filePath := filepath.Join("../ui", path)
+	log.Debug().Msgf("serving asset: %s", filePath)
+	http.ServeFile(w, r, filePath)
+}
+
+func loggedIn(w http.ResponseWriter, r *http.Request) bool {
+	cookie, err := r.Cookie("auth_token")
+	if err != nil {
+		log.Warn().Msg("Unauthorized - missing auth token")
+		return false
+	}
+	jwtToken := cookie.Value
+
+	token, err := jwt.Parse(jwtToken, func(token *jwt.Token) (interface{}, error) {
+		if _, ok := token.Method.(*jwt.SigningMethodHMAC); !ok {
+			return nil, fmt.Errorf("unexpected signing method: %v", token.Header["alg"])
+		}
+		return []byte(config.JWT_SECRET), nil
+	})
+
+	if err != nil {
+		log.Err(err).Msg("error authenticating jwt")
+		return false
+	}
+	if err != nil || !token.Valid {
+		return false
 	}

-	filePath := filepath.Join("../ui/pma", path)
-	log.Debug().Msgf("serving pma subdomain: %s", filePath)
-	http.ServeFile(w, r, filePath)
-}
+	return true
+}